"topic:suricata" — Search

291 results for “topic:suricata”

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine developed by the OISF and the Suricata community.

C6.1k1.7kUpdated 1 hour ago

cybersecurityidsintrusion-detection-systemintrusion-prevention-systemipsnetwork-monitornetwork-monitoringnsmsecuritysuricatathreat-hunting

cisagov/Malcolm

Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.

Python2.4k407Updated 19 hours ago

arkimecybersecurityinfosecnetwork-securitynetwork-traffic-analysisnetworksecuritynetworktrafficanalysisopensearchopensearch-dashboardspcapsecuritysuricatazeek

deepfence/PacketStreamerArchived

:star: :star: Distributed tcpdump for cloud native environments :star: :star:

Go1.9k247Updated 4 days ago

forensics-toolshacktoberfestinfosectoolsnetwork-analysisobservabilitypacket-capturepacket-snifferpcapsecopssecurity-toolssnortsocsuricatatcpdump-liketraffic-monitoringzeek

StamusNetworks/Clear-NDR-ISO

A Suricata based NDR distribution

Shell1.6k291Updated 1 week ago

distributionguiidsipslinuxmanagementmonitoringnetworknetwork-intrusion-detectionnetwork-securitysecuritysecurity-monitoringsuricatathreat-huntinguser-interface

al0ne/suricata-rules

Suricata IDS rules 用来检测红队渗透/恶意行为等，支持检测CobaltStrike/MSF/Empire/DNS隧道/Weevely/菜刀/冰蝎/挖矿/反弹shell/ICMP隧道等

1.3k303Updated 8 hours ago

idssecuritysignaturessuricatasuricata-rule

tenzir/tenzir

Tenzir is the data pipeline engine for security teams.

C++727103Updated just now

dataopshacktoberfestincident-responseinvestigationnetflowpcappipelinessecdataopssecuritysiemsigmasocsuricatathreathuntingzeek

StamusNetworks/scirius

Scirius is a web application for Suricata ruleset management and threat hunting.

Python675155Updated 1 week ago

cybersecuritydetectionguiinterfacemanagementnetwork-intrusion-detectionnetwork-securitypythonsecuritysignaturessuricatasuricata-rulesthreat-huntinguser-interface

iqiyi/qnsm

QNSM is network security monitoring framework based on DPDK.

C527190Updated 1 day ago

anti-ddosdpdkkernel-bypassnetwork-analysisnetwork-securitysecuritysuricata

jasonish/evebox

Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search

Rust48575Updated 4 days ago

idsipsnetsecnsmsecuritysuricata

V1D1AN/S1EM

This project is a SIEM with SIRP and Threat Intel, all in one.

Shell46189Updated 6 days ago

arkimecortexdockerelasticsearchfilebeatkibanalogstashmalwaremispmwdbn8nopenctisigmasuricatathehivevelociraptoryarazeekzircolite

shirkdog/pulledpork

Pulled Pork for Snort and Suricata rule management (from Google code)

Perl441132Updated 2 days ago

perlrulesetsnortsuricata

EgeBalci/deoptimizer

Evasion by machine code de-optimization.

Rust41731Updated 5 days ago

antivirusdetectionevasionmalwareredteamingsecuritysnortsuricatayara

al0ne/Nmap_Bypass_IDS

Nmap&Zmap特征识别，绕过IDS探测

32957Updated 3 weeks ago

bypassnmapsuricatazmap

3CORESec/testmynids.org

A website and framework for testing NIDS detection

Shell32229Updated 1 week ago

networksecuritynidssnortsnort-rulessuricatasuricata-rules

jasonish/docker-suricata

A Suricata Docker image.

Shell31479Updated 3 days ago

containerdockeridsnsmpodmansuricata

OISF/suricata-update

The tool for updating your Suricata rules.

Python293100Updated 1 week ago

idsipsnetwork-monitoringnsmsecuritysuricata

jasonish/py-idstoolsArchived

idstools: Snort and Suricata Rule and Event Utilities in Python (Including a Rule Update Tool)

Python28486Updated 1 week ago

idsintrusion-detectionsnortsuricataunified2

robcowart/synesis_lite_suricataArchived

Suricata IDS/IPS log analytics using the Elastic Stack.

Shell24094Updated 1 week ago

elasticsearchelkfilebeatkibanalog-analyticslogstashsuricata

g3tsyst3m/BriarIDS

An All-In-One home intrusion detection system (IDS) solution for the Raspberry PI.

Python22850Updated 1 week ago

brointernetofthingsintrusion-detectioniotmonitorraspberry-piraspberrypiraspbiansecurityonionsuricata

satta/awesome-suricata

A curated list of awesome things related to Suricata

22121Updated 1 week ago

awesomeawesome-listidsipslistsnsmsuricata

advanced-threat-research/CVE-2020-16898

CVE-2020-16898 (Bad Neighbor) Microsoft Windows TCP/IP Vulnerability Detection Logic and Rule

Lua20930Updated 2 months ago

atrbad-neighborbadneighborbuffer-overflowbuffer-overflow-vulnerabilitycvecve-2020-16898icmpv6luamcafeemicrosoftneighbor-discoveryneighbor-discovery-protocolrcesuricatasuricata-ruletcpip-stackwindows-10

google/gonids

gonids is a library to parse IDS rules, with a focus primarily on Suricata rule compatibility. There is a discussion forum available that you can join on Google Groups: https://groups.google.com/forum/#!topic/gonids/

Go19349Updated 1 day ago

idsnetworknetwork-securityparsesecurity-toolssuricata

travisbgreen/hunting-rules

Suricata rules for network anomaly detection

18343Updated 1 week ago

anomaly-detectioncyber-threat-intelligencecybersecurityidslateral-movementnetwork-monitoringnetwork-securitynsmsuricatasuricata-rulethreat-huntingthreat-intelligence

DynamiteAI/dynamite-nsm

DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat detection

Python17223Updated 3 weeks ago

agentsdashboardsdynamite-nsmelasticsearchipfixkibanalogstashnetflownetwork-analysisnetwork-trafficpythonpython3suricatazeek

Nirusu/how-to-setup-a-honeypot

How to setup a honeypot with an IDS, ELK and TLS traffic inspection

16515Updated 1 week ago

elkhoneypotpolarproxyproxmoxsuricatatlsvirtualization

Kwangsa19/Ketmanto-Cybersecurity-Portfolio

I developed a rigorous cybersecurity project portfolio on mock clients covering NIST, audits, Linux, SQL, assets, threats, vulnerabilities, detection, incident response, escalation, Wireshark, tcpdump, IDS (Suricata), SIEM (Splunk, Chronicle), and Python automation.

Jupyter Notebook15042Updated 1 week ago

chroniclecybersecurityescalationidsincident-responselinuxnistpastaplaybookpythonsecuritysecurity-auditsecurity-automationsiemsplunksqlsuricatatcpdumpthreat-modelingwireshark

al0ne/suricata_optimize

Suricata安装部署&丢包优化&性能调优&规则调整&Pfring设置

14359Updated 3 weeks ago

intelixgbepfringsuricata

bgenev/impulse-xdrArchived

Fully automated host & network intrusion detection platform. Detects malware from behavioural patterns rather than signatures and enables deeper visibility than legacy tools.

Python1388Updated 1 month ago

cloudcybersecuritydevopsmonitoringosquerysecuritysecurity-toolsserver-securitysiemsuricatavisibilityvpcvpc-endpointsvpsxdr

alphasoc/nfr

A lightweight tool to score network traffic and flag anomalies

Go12319Updated 3 weeks ago

bro-idsintrusion-detectionmalware-analysismonitoringsecuritysuricata

ccdcoe/CDMCS

Cyber Defence Monitoring Course Suite :: Suricata, Arkime (and others in the past)

Jupyter Notebook10835Updated 2 months ago

arkimeclassroommolochmonitoringnetwork-monitoringnsmobservabilitypacket-capturepacket-capture-and-analysissecurity-monitoringsuricatatraining

Page 1 of 10